Lucene search
HistoryAug 10, 2011 - 9:55 p.m.
CVE-2011-3127
cve-2011-3127
wordpress
clickjacking
vulnerability
admin page
login page
security
nvd
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
6.3 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.8%
WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 does not prevent rendering for (1) admin or (2) login pages inside a frame in a third-party HTML document, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
Affected configurations
Node
wordpresswordpressMatch3.1
ORwordpresswordpressMatch3.1.1
ORwordpresswordpressMatch3.1.2
ORwordpresswordpressMatch3.2beta1
Related
ubuntucve
ubuntucve
CVE-2011-3127
2011-08-10 00:00:00
patchstack
patchstack
WordPress <= 3.1.2 - Clickjacking Attacks
2011-08-10 00:00:00
nvd
nvd
CVE-2011-3127
2011-08-10 21:55:02
cvelist
cvelist
CVE-2011-3127
2011-08-10 21:16:00
debiancve
debiancve
CVE-2011-3127
2011-08-10 21:55:02
prion
prion
Hardcoded credentials
2011-08-10 21:55:00
nessus
nessus
WordPress < 3.1.3 Multiple Vulnerabilities
2018-01-26 00:00:00
WordPress < 3.1.3 Multiple Vulnerabilities
2016-02-26 00:00:00
Debian DSA-2470-1 : wordpress - several vulnerabilities
2012-05-15 00:00:00
openvas
openvas
Debian Security Advisory DSA 2670-1 (wordpress)
2012-05-31 00:00:00
Debian Security Advisory DSA 2670-1 (wordpress)
2012-05-31 00:00:00
Debian: Security Advisory (DSA-2470-1)
2023-03-08 00:00:00
debian
debian
[SECURITY] [DSA 2670-1] wordpress security update
2012-05-11 20:41:14
osv
osv
wordpress - several
2012-05-11 00:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
6.3 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.8%
Related for CVE-2011-3127